Hyatt Hotels hit by credit card data-stealing malware – again

The Grand Hyatt Kauai Resort and Spa in Hawaii is among those affected by the latest breach.
Image: Hyatt Hotels
Hackers have infected Hyatt Hotels’ payment card systems with malware and have potentially stolen visitor names and credit card details for the second time in as many years.

包含灭火器使用等消防设施和器材操作的在线EHS动画培训课程
In a statement Hyatt Hotels Corporation president of operations Chuck Floyd said the company has “discovered signs of and then resolved unauthorized access to payment card information” from cards entered manually or swiped at the front desk of some Hyatt hotels between March 18, 2017 and July 2, 2017.
In total, 41 hotels are affected, almost half of which are in China. Irregular activity has also been detected in Hyatt hotels in Brazil, Columbia, Guam, India, Indonsesia, Japan, Mexico, Puerto Rico, South Korea and Hawaii in United States.
Upon discovering the unauthorized access, Hyatt launched an investigation alongside “third-party experts”, payment card networks and the authorities. The investigation found that the data breach can be traced back to “an insertion of malicious software code from a third party onto certain hotel IT systems.”
和平时期,组织应该居安思危,强业务持续和灾难恢复计划的测试和演习。
The company hasn’t provided figures on the number of guests who have fallen victim to the credit card data thieves, only that it’s a “small” number of them, but Hyatt says it has contacted all the guests who used the payment card systems at the infected hotels during the at-risk dates.
Hotel guests are advised to closely review their credit card statements regularly and report any unauthorized activity to their bank as soon as anything is noticed.
“This incident is something we take seriously, and we are sorry for the inconvenience and concern this may cause our guests,” said Floyd.
The company says it is has implemented additional security measures to strengthen the security of its systems and that “Customers can confidently use payment cards at Hyatt hotels worldwide”.
It’s the second time the hotel group has been hit with malware recently: last year, the hotel group revealed that almost half its properties had fallen victim to payment data stealing malware.
ZDNet contacted Hyatt Hotels for additional comment, but had not received a response as of the time of publication.
READ MORE ON CYBER CRIMEHackers are using hotel Wi-Fi to spy on guests, steal dataHow hackers can ruin your summer vacation [CNET]Trump hotel chain suffers fresh data breachHackers are now using the exploit behind WannaCry to snoop on hotel Wi-Fi Risky business: Here’s why your payment system may be vulnerable to cyberattack [TechRepublic]
互联网的安全令人担忧,我们经常教育员工,将私人事务的帐户密码与工作相关系统的密码设置为不同,并且不要在密码中使用个人信息如电话号码和生日等等。以防止来自互联网的黑客通过渗透我们的员工进而入侵我们的系统。

猜您喜欢

信息安全意识培训课程
免费注册信息系统安全师CISSP在线培训
网络安全法宣传视频系列001《网络安全法》背景知识
信息安全宣传活动策划案
WESTSINCERE DOORSANDDRAWERSINC
信息安全意识教育动画——我在多利宝里的钱哪儿去了?